Xoonips
by Riken
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-5664 | 0.00 | — | 0.03 | Nov 16, 2020 | Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors. | |||
| CVE-2020-5663 | 0.00 | — | 0.01 | Nov 16, 2020 | Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors. | |||
| CVE-2020-5659 | 0.00 | — | 0.01 | Nov 16, 2020 | SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors. | |||
| CVE-2020-5662 | 0.00 | — | 0.01 | Nov 16, 2020 | Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors. | |||
| CVE-2020-5625 | 0.00 | — | 0.01 | Aug 28, 2020 | Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors. | |||
| CVE-2020-5624 | 0.00 | — | 0.01 | Aug 28, 2020 | SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | |||
| CVE-2014-1968 | 0.00 | — | 0.01 | Feb 27, 2014 | Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
- CVE-2020-5664Nov 16, 2020risk 0.00cvss —epss 0.03
Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.
- CVE-2020-5663Nov 16, 2020risk 0.00cvss —epss 0.01
Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
- CVE-2020-5659Nov 16, 2020risk 0.00cvss —epss 0.01
SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
- CVE-2020-5662Nov 16, 2020risk 0.00cvss —epss 0.01
Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
- CVE-2020-5625Aug 28, 2020risk 0.00cvss —epss 0.01
Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
- CVE-2020-5624Aug 28, 2020risk 0.00cvss —epss 0.01
SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
- CVE-2014-1968Feb 27, 2014risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.